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AMENDMENTS TO THE CLAIMS: 



This listing of claims replaces all prior versions and listings of claims in the application: 



LISTING OF CLAIMS: 



■ yj J\ . (Original) A method comprising: 

1. , • 



and 



receiving, from a delegator, a designation of a role and a delegate to assume the role; 
receiving, from a credential service provider, an indication that the designation is valid; 

issuing a delegation credential in response to receiving the indication. 




\ 




2. (Original)/t^e/hethod of claim 1, wherein the delegation credential comprises 
encoded delegation infjp'rn^tion. 



^\ ^—^13. (Original) The method of claim lywherein the delegation credential allows the 
f ^if a ablegate to assume the role. 

4. (Original) The method of claim 1, further comprising: 
issuing a confirmation to the delegator which indicates that the delegation credential was 



issued. 
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5. (Original) The method of claim 1, wherein the delegator can delegate multiple 
functions, the role comprising one of the multiple functions. 

6. (Original) The method of claim 1, wherein the delegation^edential is issued to and 
stored by at least one of the delegate and a credential service provider. 



7. (Original) The method of claim 6, wherein the credential service provider receives a 
digital credential from the delegate and an access requirement from a relying party and 



enje 



determines if the digital credential is valid for the access requirement 




8. (Original) The method of claim 7, wherein the credential service provider determines if 
there is a delegation credential that corresponds to the access requirement and provides the 



delegation credential that corresponds to the access requirement to the delegate 



9. (Original) The method of^ claim 8, wherein multiple delegation credentials correspond 
to the access requirement and tfye credential service provider provides the multiple delegation 
credentials to the delegate. 



10. (Original) The method of claim 9, wherein the delegate selects which of the multiple 
delegation credentials to use for the access requirement and the credential service provider 



provides a selected delegation credential to the relying party. 
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1 1 . (Original) A method comr. rising: 
receiving a request from a delegate for access to a service; 
obtaining delegation credentia Is for the delegate; 

determining which of the dele gation credentials correspond to access requirements for the 
service; and 

providing the delegation credentials that correspond to the access requirements. 



12. (Original) The method of claim 11, further comprising: 



receiving a digital credential 
determining if the digital 
wherein, if the digital 
service, the method performs the ob 



from the delegate; and 
credential corresponds to access requirements for the service; 
credential does not correspond to the access requirements for the 
aining, determining and providing. 



13. (Original) The method of claim 11, further comprising: 



receiving, from the delegate 
to the access requirements; and 

using the selected one of the 



a selected one of the delegation credentials that correspond 



delegation credentials to access the service. 



14. (Original) The method o 'claim 13, further comprising: 
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verifying validity of the selected one/of the delegation credentials prior to using the 
selected one of the delegation credentials tor access the service. 

15. (Original) The method of claim 13, further comprising: 

receiving a statement indicating that the selected one of the digital credentials is valid 
prior to using the selected one of the delegation credentials to access the service. 



16. (Currently Amended) A method comprising: 

receiving, from a delegate, a value corresponding to a confirmation code and an 
\ identifier, the confirmation code and the identifier corresponding to a delegator; 

identifying the delegator using at least one of the identifier and the confirmation code; 



Ullvl 



assigning, to the delegate, a delegation credential that corresponds to the delegato r; and 
sending a message to the delegator indicating that the delegation credential has been 



assigned . 



|j/7. (Cancelled)^! 



18. (Original) The method 
storing the delegation 
provider. 



f claim 16, further comprising: 
credential in a database maintained by a delegation service 
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19. (Original) The method of claim 16, wherein identifying comprises checjang a hash of 
the confirmation code to identify the delegator. 



20. (Original) A method comprising: 

receiving, from a delegate, a delegation request for a role of/fhe delegator; 
receiving a value corresponding to a confirmation code firom the delegate; 
receiving, from the delegator, a request for outstanding delegation requests; 
requesting approval from the delegator of an outstanding delegation request from the 
delegate; and 

receiving the confirmation code from the/flelegator in response to requesting approval. 



21. (Original) The method of claim 20, further comprising: 

confirming the approval of the^outstanding delegation request using the confirmation 



code. 



22. (Original) The method of claim 21, further comprising: 
receiving a digital credential from the delegator; and 
confirming mat the received digital credential matches a digital credential of the 
delegator. 
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^ lj/ ^ (Original) An artic le comprising a machine-readable medium that stores executable 
instructions that cause a machine to: 



receive, from a delegator 
receive, from a credential 
issue a delegation credential 



, a designation of a role and a delegate to assume the role; 
service provider, an indication that the designation is valid; and 
in response to receiving the indication. 



24. (Original) T^e/anicle of claim 23, wherein the delegation credential comprises 
encoded delegation inforrrxatjon. 



25. ^Original) The article of claim 23, wherein the delegation credential ajlfjws the 
delegateio assume the role. 



26. (Original) The article of claim 23, further comprising instructions that cause the 
machine to: 



issue a confirmation to the delegator which indicates that the delegation credential was 



issued. 



27. (Original) The article of claim 23, wherein the delegator can delegate multiple 
functions, the role comprising one'of the multiple functions. 
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28. (Original) The article of claim 23, wherein the delegation credential is issued^to and 
stored by at least one of the delegate and a credential service provider. 

29. (Original) An article comprising a machine-readable medium ^nat stores executable 
instructions that cause a machine to: 

receive a request from a delegate for access to a service^ 
obtain delegation credentials for the delegate; 
determine which of the delegation credentials correspond to access requirements for the 
service; and 

provide the delegation credentials that correspond to the access requirements. 



30. (Original) The article of clajm 29, further comprising instructions that cause the 
machine to: 

receive a digital credential from the delegate; and 
determine if the digital credential corresponds to access requirements for the service; 
wherein, if the digital credential does not correspond to the access requirements for the 
service, obtaining, determining and providing are performed. 



31. (Original) The article of claim 29, further comprising instructions that cause the 
machine to: 
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receive, from the delegate, a selected one of the delegation credentials^nat correspond to 
the access requirements; and 

use the selected one of the delegation credentials to access the' service. 

32. (Original) The article of claim 31, further comnnsing instructions that cause the 
machine to: 

verify validity of the selected one of the delegation credentials prior to using the selected 
one of the delegation credentials to access the service. 

33. (Original) The article of clairr/31, further comprising instructions that cause the 
machine to: 

receive a statement indicating that the selected one of the digital credentials is valid prior 
to using the selected one of the delegation credentials to access the service. 



34. (Currently Amended) An article comprising a machine-readable medium that stores 
executable instractiorjs that cause a machine to: 

receive, from a delegate, a value corresponding to a confirmation code and an identifier, 
the confirmation code and the identifier corresponding to a delegator; 

identify the delegator using at least one of the identifier and the confirmation code; and 

assign, to the delegate, a delegation credential that corresponds to the delegato r; and 
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assigned 



send a message to the delegator i: idicating that the delegation credential has been 



35. (Cancelled)^ 



store the delegation credential ii 



36. (Original) The article of clai n 34, further comprising instructions that cause the 
machine to: 



a database maintained by a delegation service provider. 




37. (Original) The article of claim 34, wherein identifying comprises checking a hash of 
the confirmation code to identify the delegator. 

38. (Original) An article compiising a machine-readable medium that stores executable 
instructions that cause a machine to: 

receive, from a delegate, a dele gation request for a role of the delegator; 
receive a value corresponding |o a confirmation code from the delegate; 
receive, from the delegator, a request for outstanding delegation requests; 
request approval from the delegator of an outstanding delegation request from the 



delegate; and 

receive the confirmation code 



rom the delegator in response to requesting approval. 
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39. (Original) The article of claim 38, further comprising instructions that cause the 
machine to: 

confirm the approval of the outstanding delegation request using the confirmation code 




40. (Original) The article of claim 39, further comprising instructions that cause the 
machine to: 

receive a^dfgital credential from the delegator; and 

confirm that the received digital credential matches a digital credential of the delegator. 



